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EMI mode A, the infonnati'on 
of the tnnmiasion h not 
allowed to be copied as a whole 
wart; thb is the highest level 
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is allowed to be copied once and 
once only by the sink device. 
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on which secure mode is selected between mode A and mode B, a different decryption prqcess Is used by die sink device to decrypt the 
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thereafter render or leconl die audloTvisual work bemuse die decryption process selected will diRbr (tom tht enoypticn process used. 
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A METHOD AUV A SYSTEM FOR TRANSFERRING INFORMATION USING AN ENCRYPTION MODE INDICATOR 

BACKGROLTsTO OF THE INVENTION 

FIELD OF THE INVENTION 

The present inveniion discloses a method and a system. In one embodiment there is 
disclosed a method and system fortransfbring information using, an encryption mode indicator. 
The present invention relates to the field of information communication systems. More 
particularly, the present invention relates to the field of secure communication modes for 
information representing audio/visual works. 

RELATED ART 

In recent years, there has been a technique, by which a plurality of audio/visuaJ fAV) 
devices can be connected using digital interfaces so that AV information (e.g., representing AV 
works such as movies, songs, etc.) can be transmitted from an information source (e.g., a video 
disk player or video cassette recorder) to an information display device (e.g., a television set or 
monitor) or an information sink device. The development of this technology as led to the 
adoption of the IEEE 1394 serial communication standard for AV devices. Within the IEEE 
1394 serial communication ^standard, information is transmitted in digual packets having cenain 
header information and having data sections. 

The AV digital information that is transmitted (e.g., representing movies) is usually 
protected by a copyright to prevent unauthorized u$«rs from viewing the information and making 
unauthorized reproductions of the AV works. To prevent unauthorized copying, the AV 
information is transmitted with encoded copy control information called the Copy Control 
Information CCCI) bits. The CCI bits can also be referred to as Copy Generation Management 
System (CGMS) bits. 
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The encoded CCI code is made up of 2 bits, of which "00/ "10," and "11" indicate "unlimited 
allowance for copies," "allowance for a single generation copy, " and Inhibition of copy," 
respectively. The "01 ** bit code is left unused. The manner in which the CCI bits are added to 
an AV information is specified for the difierent kinds of AV mfbrmation (e.g.. Motion Picture 
Expect Group MPEG, Digital Video DV and audio data). These CCI bits are added within the 
data portion of data packets that constitute the AV information to control the use of the AV 
information by down stream devices. 

At each data recordiog time, a recording device inspects the CCI code added to the AV 
information of a packet and refrains from recording them if the CCI code indicates the copy 
prohibitioa If the CCI code indicates the allowance of a an^e copy, the CCI code is changed 
to copy prohibition mode and then the AV information is recorded in a recording media once. 
Thus, the copy generations allowed from the original data are limited. 

Moreover, in order to enforce the copy generation limiting system, there has been 
employed a method by which CCI codes are encrypted into the data portions of the information 
and the decryption information is licensed to the manufacturer ihat has made a contraa to 
mamifkcture only a device conforming to the copy generation limiting system. In order for the 
recording device to inspect or alter the CCI code encrypted within the AV information, it is 
necessary to provide a microcomputer mounted on the device or to provide specialized hardware 
for the processing. In order to match numerous kinds of AV information, the required 
decryption circuitry is relatively complex, increasing the cost of the device. 

For an inexpensive recording device, e.g.. a bit stream recording (BSR) device, it is 
conceivable to manu&cture the device without the ability to read the CCI codes within the AV 
information because the above specialized hardware is eliminated. For this Inexpensive BSR 
device, it has been concdved to provide a unique field within the AV packets to store copy 
protection infbnmation. Figure 1 illustrates fields of a prior art information packet 10 including 
a header section 1 2 in accordance with the IEEE 1394 standard, a packet (CIP) header section 
14 and a data field portion 16. The data packet i£ an isochipnous packet A special bit stream 
copy control infoonation (5CI) field 20 is included vAhin the CJ?: header section 1 4. The BCI 
field 20 contains the copy protection information fbr use when AV information is transmitted 
to a BSR device. Although the data section 16 can contain encrypted data, the CIP header 
section 14 is typically transmitted without encryption to acconmiodate the BSR's limited 
capabilities. 
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In response to this packet 10, the BSR device inspects the BCI field 20 of the packet 
header 14 and does not record the data if the packet indicates the copy inhibition, but can record 
the data if the same indicates the single generation copy allowance or the unlimited allowance. 
If allowed, the packet information can be recorded by the BSR device together with the BCI 
code 20 which is stored in the packet header 14. Provided the original packet header indicated 
the single generadon copy allowance, when the recorded information is reproduced and supplied 
from the BSR device to the IEEE 1394 bus the recovered BCI code 20 will indicate copy 
inhibition (because it has already copied once). However, the same BCI code is stored and 
transmitted if the original BCI code indicated no copy limit. 

Figure 2 illustrates a system 30 in which the above copy protection can be compromised 
by an unauthorized device 34. As shown, a source device 32 transmits information to a sink 
device 36, which is a BSR device. An intercept device 34 is placed between this communication 
path (38a and 38b). The BCI code 20 in the packet header 14 can be corrupted by intercept 
device 34 while the packet is being transmitted from the transmitting device 32 to the receiving 
device 36. For instance, the transmitting device 32 transmits the BCI code 20 having the bit 
code "ir indicating the copy prohibition, but it is corrupted (by device 34) during the 
transmission into the bit code "10" indicating the single generation copy allowance or can be 
altered to the bit code "00'' indicating no copy restriction at all. \n response to this packet, the 
BSR 36 is not infonmed of the fkct that the data intrinsically should inhibit the copy, and records 
the packet information because the BCI code of the packet header allows a single generation 
copy or unlimited copies. Therefore, the copy generations cannot be controlled. 

Accordingly, what is needed is a copy prbtaelion syttm whereby packet information can 
be transmitted from a source device to an unnttdligeiit device without compromise by an 
intermediate device. What is fiirtlier needed lb a copy protection system whereby packet 
information can be transmitted from a source device to a J9SR device without compromise by 
an intermediate device. What is needed fiirther is a that do$s not allow copy protection 
mode information within a transmission to be altered and yield usable results at the sink device. 
The present invention provides such advantageous features. Tfaes^ and other advantages of the 
present invention not specifically mentioned above will become clear within discussions of the 
present invention presented berein. 

SI ?MM ARY OF THE INVENTION 
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A method and system are described for transferring information using an encryption 
mode indicator (EMI). The present invention is useful in applications where copy protected 
infonmation is to be transfexred between devices, e.g., in the transmission of audio/visual works 
that are subject to copyrights. The present invention can be used within the IEEE 1394 serial 
communication standard in which transmissions comprise individual packets of information. 

The present invention provides several secure information communication modes in 
which data (e.g., representing an audio/visual work) can be transmitted from a source device to 
a sink device (receiving station) in a number of secure modes. In one secure mode, EMI mode 
A, the information of the transmission is not allowed to be copied as a whole work; this is the 
highest level of copy protection. In second secure mode, EMI mode B, the information of the 
transmission is allowed to be copied once and once only by the sink device. In a third 
transmission mode, no encryption is used and free copying is available. Depending on which 
secure mode is selected between mode A and mode B, a different encryption process is used by 
the source device to encrypt the transmission. Further, depending on which secure mode is 
selected between mode A and mode B, a different decryption process is used by the sink device 
to decrypt the transmission. The EMI code therefore indicates both: (1) the copy protection 
mode of the transmission; and also (2) the encryption process used. 

The present invention is particularly useful for transmissions between a source device and 
a bit stream recorder which does not have the capability to extract copy control information 
from a packet header. By using different encryption processes for each transmission mode, an 
unauthorized device placed between the source and the sink devices that alters the EMI code 
will be unable to thereafter render or record the audio/visual work because the decryption 
process selected will differ from the encryption process used. 

In one embodiment of the present invention, one encryption process is used but two 
difierent cipher keys (key A and key B) are used to decrypt the data. In this embodiment, the 
information is enoyptcd using a cipher key that is dependent upon the EMI code that is stored 
in the packet header. If the EMI code is coirupted from mode A to mode B, the sink device will 
decrypt the transmisaon by using the key "B." Since the encryption, in this example, is made by 
means of the key "A," what is obtained by the sink device is a meaningless number. What is 
recovered at the sink is not the original AV information in the least and are meaningless, even 
if recorded by the sink device. 
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BRffiF nRSCRTPTinM OF THR DRAWINGS 

Figure 1 is an illustration of fields within an information packet according to a copy 
conirol information (CCA) interface of the prior an. 

Figure 2 illustrates a block diagram of a system of the prior an having a source device 
and a sink device and an unauthorj2ed intermediate device coupled between. 

Figure 3 illustrates a block diagram of one system in accordance with the present 
invention having a source device and a sink device coupled to conimunicaie an information 
packet. 

Figure 4 is an illustration of fields within an information packet including a encryption 
mode indicator (EMI) in accordance with the present hiventioniincluding. 

Hgure 5A is a circuit diagram of a source device and a coupled sink device in accordance 
with a first embodiment of the present invention. 

Figure SB is a circuit diagram of a source device and a coupled ank device in accordance 
with a second embodiment of the present invention. 

Figure 6A is a circuit diagram of components of a bit stream recording device in 
accordance with an alternative implementation of the first embodiment of the present invention. 

Figure 6B is a circuit diagram of components of a bit stream recording device in 
accordance with an alternative implementation of the second embodiment of the present 
invention. 

Figure 7 is a flow chart illustrating steps perfbrmed by a source device and a sink device 
in accordance with the present invention. 

Figure 8 illustrates different types of audioAnsual devices supported by the present 
invention and the various communication modes supported by input signals to these devices and 
output signals firom these devices. 

Figure 9 illustrates operational modes within the present invention. 

DETATLKD DKSrRlPTlQN OF THE TMVENTTQN 

In the following detailed description of the present invention, a method and system for 
providing secure transmission of copy protected information between a source device and a bit 
stream recording (BSR) device, numerous specific details are set forth in order to provide a 
thorough understanding of the present invention. However, it will be recognized by one skilled 
in the art that the present invention may be practiced without these specific details or with 
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equivalents thereof. In other instances, well known methods^ procedures, components, and 
circuits have not beei described in detail as not to unnecessarily obscure aspects of the present 
invention. 

According to the present invention^ the AV packet information is encrypted al the lime 
when the packets are transmitted from the source device, and the cipher mode or enciyption 
process that is used is altered according to an encryption mode indicator (EMI) code. The EMI 
code of the present invention represents three conditions, a copy prohibition mode, a single 
generation copy allowance mode and an unrestricted mode. The term ''single generation copy" 
indicates that the original work may allow many copies to be made from it, but a copy of the 
original (e.g., the one sent to the sink device) can be copied itself only once. The EMI 
information indicating the selected cipher mode is stored in b packet header. If the EMI 
information is corrupted on the receiving side, the sink (e.g., receiving) device will be unable to 
acquire the correct AV information from the packets because the sink device will decrypt in a 
cipher mode different from the genuine cipher mode. In one embodiment, the cipher mode 
includes an encryption process, a cipher key, and can include an initial value of a register. 

Moreover, depending upon whether the transmitting device and the sink device can 
understand the EMI information added to the infisrmation packet, the individual communications 
can be classified to use diflbrent cipher modes so that the transmitting device and the sink device 
can recognize the other device. 

EMI SECURE COMMIiWCATION MODES 

Figure 3 illustrates an exemplaty system 1 OO.of the many system configurations that are 
supported withm the present invention. System 100 indudes an optional wireless transmitter 
1 10 which is capable of communicating digital AV iitformation representing a digital program 
via broadcast channel IIS. In one embodiment, transmhter 1 10 can be a satellite broadcast unit. 
In an alternative embodiment, transmission line ] IS is not wireless, but a cable. In this case, 
transmitter 1 10 is a land-based transmitter of a cable or pay-TV company. 

System 100 also includes a distal broadcast receiver unit 120. This unit 120 can also 
be called a set top box (STB). Herein, recdver unit 120 is called the source device 120. The 
source device 120 contains EMI circuitry ISO in accordance vAth the present invention to 
support a number of EMI communication modes which are describe further below. Circuit 1 50 
utilizes a different encryption mechanism for each EMI encryption mode. The source unit 120 
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is an intelligent device and contains specialized circuitry for proce$sins copy protection 
standards. For instance, source unit 120 receives a digital program over channel 1 1 S and this 
digital program can be encoded using copy control information (CCI information). 

System 100 of Figure 3 also includes a sink device 136, which in this example is a bit 
stream recorder (BSR) unit 130 and is coupled to the source unit 120 using a serial interfice 
12S. Although shown as a BSR device, sink unit 130 could also be any receiver unit shown in 
Figure 8. In many cases, the sink unit 130 is a relatively simple device and, to keep costs down, 
does not contain the full complement of specialized circuitry required to fully process copy 
protection standands. For instance, sink unit 1 30 does not have the ability to decode CCI coded 
AV information. However, it does contain EMI circuitry 160 in accordance with the present 
invention. EMI circuitry 160 has the ability to decrypt AV information packets encrypted 
according to EMI codes. Sink unit 130 is coupled to receive digi^ information from the source 
unit 120 over a serial line 125, Digital information is passed over line 12S using the IEEE 1394 
communication standard. Moreover, this information is forwarded in dighaJ data packets that 
contain header infommtiun in a header portion and AV infomiation (e.g., data) in a data portion. 

As described further bdow, EMI circuits ISO and 160 of Figure 8 are implemented such 
that each contains two cipher circuits so that information transmitted over line 125 is encoded 
under at lease two different encryption mechanisms, A and B. In one embodiment, EMI circuit 
160 also has two cipher circuits so that it can fif allowed) decrypt information received over line 
125 in mode A or in mode B encryption. Rather than using a BCI code, the present invention 
uses an EMI code placed within data packets of line 125. The EMI code, in addition to 
indicating the copy protection mode; also advantageously determines the encryption mode used 
in the data portion of the packet. Therefore, the EMI circuit 160 wtchin the sink unit 130 uses 
the EMI mode to select the proper decryption mechanism to decrypt the transmission received 
from line 125. Should be EMI code of the present invention be tampered with between the sink 
device 120 and the source device 130 (e.g., by an intermediate intercept device), then EMI 
circuit 1 60, of the present invention, will select the wrong deciypdbn mode. In this instance, the 
origiiial transmission will not be obtamed by the sink device 130. 

There are three kinds of AV information packets ^ich are transmitted over digital 
interface 125. They is copy free tnfonnation, copy once information, and copy prohibited 
information. The streams have different security levels of copy protection in accordance with 
the present invention. The manner in which copy protection is provided to each packet is called 
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its EJVD mode. As described below, in accordance with the present invention the EMI mode also 
indicates the mode of enayption that is applied to the AV information associated with the END 
mode. 

The cipher or EMI modes used in accordance with the present invention are described 
as foDows. EMI mode A is used to indicate that l^e packet data is copy prohibited. Under this 
mode A, AV information can only be rendered on a playback device (c.g., TV or mooitorX but 
the AV infoimadon is not aDowed to be recorded. EMI mode B is used to indicate that the A V 
infaimation can be copied (e.g., recorded) only one time to allow a single generation copy. This 
mode B also called single generation copy allowance mode. EiAl mode 0 is used when the AV 
mfonnation faais no copy protection and therefore there is no copy Umit. Mode 0 is also called 
unrestricted mode. For simpUcity of description, no encryption is made for the mode 0 in the 
present embodiment. In the case of AV information in the copy control state allowing n number 
of copies (xtf>l). an extension can be made by defining the modes corresponding to the individual 
n-copies. 

The EMI modes can be represented using a number of well known cncodmg techniques 
and can be r^resented using a register having at least two bits. In one particular embodiment 
of the present invention, a two bit register is used. Table I below illustrates exemplary coding 
numbers for each EMI mode, it is appreciated that the codmg numbers selected within Table 
I are exemplary only and that any set of three unique mimbers can be used. 

Table I 

EMIM adfi TwQBitNumbsi Pwpriptigp 

Mode A 1 1 Copy Prohibition 

ModeB 10 Copy Once 

ModeO 00 No encryption Unrestricted 

Reserved 01 

It is appreciated that AV information received over digital interne 125 can include 
multiple programs. Each program can have its own copy security level. In this case, a copy 
prohibition stream (code 11) is a stream which includes at least one copy prohibited program. 
A copy once stream (code 1 0) is a stream that has no copy prohibited programs and indudes at 
least one copy once program. With the particular example of a BSR sink device 130 (Figure 3), 
device 130 is able to record only AV information received in EMI mode B (or EMI mode 0) 
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and can only pass through (or reject) AV information received in EMI mode A. 

Figure 4 ilJustrates the fields that constitute a typical information packet 200 in 
accordance with the present invention that arc sent from the source unit 1 20 to the sink unit 1 30 
(Figure 3). Information packet 200 of Figure 4 contains an IEEE 1394 header section 230 
because, in one embodiment, the data packets confonn to the IEEE communication standard. 
This header section 230 contains a datajength field, a tag field, a channel field, a tcode field and 
an sy field. Aside fi-om the tag and tcode fields, header 230 conforms to the well known IEEE 
standard and the other fields are defined therein. The tag field indicates that the data field starts 
with a CIP header 240. The tcode field can be one of two predetennined values. It is 
appreciated that a data stream means a stream of information on. one 1394 isochronous channel. 

Infismiation packet 200 also contains a CEP header section 240. In accordance with the 
present invention, the CIP header section 240 contains an EMI field 210 that in one 
implementation is two bits wide and contains the EMI mode value as defined in Table I. The 
EMI mode value corresponds to the particular secure communication mode associated with the 
data of the data field 220 of the section 250. As described fiinher below, the EMI mode 
indicated within tiie EMI field 210 indicates: (I) the particular secure communication mode 
selected (e.g.. mode A» mode B or mode 0) and also (2) the particular type of encryption 
technique used for packet 200. It is appreciated that while the present invention enciypts the 
data portion 220 of packet 200 (if in EMI mode A or EMI mode B), the header sections 230 and 
240 remain unencrypted when transmitted over the IEEE 1394 interface 125 (Figure 3). 

EMI modes within field 210 indicate the copy control status of the data stream on the 
1 394 isochronous stream. It is important to understand tim the data stream in accordance with 
Uje present invention can consist of several video and/or audio programs and each of them can 
have a different copy control infbraiation associated with the program. For instance, the MPEG 
transport stream output fix>m a source unit can contain several programs, each of which can have 
a different level of copy protection. The source device assigns the EMI value for the most 
restrictive program in tiie stream. A bit stream recorder may or may not record the entire stream 
based on die EMI value. Anotfier type of recording device which is capable of processing each 
program in the stream individually and is also capable of intierpreting copy control information 
assodated witfi each program is called a format cognizant recording device. A format cognizant 
recording device refers control information associated with each program to decide its action. 
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EMI CIRCUITRY OF THE PRESENT INVENTION 

Figure 5 A illustrates a system 400 of the present invention having a source device 120 
and a sink device 1 30. Figure SA illustrates the EMI circuitry 1 50 of a typical source unit 1 20 
in more detail. Source unit 120 can be a set-top-box (STB) unit also called a broadcast receiver 
wliich contains many well known circuits (not shown for clarity) in addition to the EMI circuit 
150. A receiver circuit 410 receives AV information in the foitn of data packets and performs 
any decryption required under CCI standards. The result is forwarded over communication 
interface 430 and also to a de-muhiplexer (de-mux) 414 using interface 413. Circuit 4 1 2 is an 
EMI mode select dncuit and depending on the recovei^d CCI copy protection information will 
select either EMI mode A or EMI mode B, if copy protection is required. If no copy protection 
is required, then interface 41 3 is passed directly to interfiice 125 and EMI mode 0 (code ''00") 
is inserted into EMI field 210 of the data packet. 

Assuming copy protection is required, select circuit 4 12 controls de-mux 4 14 via signals 
over Une 426. If EMI mode A is selected, then the data packet from 41 3 is routed to encrypt 
unit A 418 which encrypts the data portion (e.g., field 220) of the data packet according lo a 
cipherkey416andaccordmgtoafiRrtenciyptiontechniquewithinencrypti Unit 
418 also places the '1 1** code (EMI mode A) within the EMI mode field 210 of the data packet. 
The result is then passed to multiplexer (mux) 422 which is also conu-olled by line 426. Mux 
422 passes the output from encryption unit A 418 to interface 125 using the optional output 
driver 424. If EMI mode B is selected, then the data packet from 413 is routed to encrypt unit 
B 420 whkh tticrypts the data portion (e.g.. field 220) of the data packet according to the key 
416 and according to a second encryption technique within encryption unh B 420. Unit 420 also 
places the •10" code (EMI mode B) within the EMI mode field 210 of the data packet. The 
result is then passed to multiplexer (mux) 422 which is also controlled by line 426. Mux 422 
passes the output from encryption unit B 420 to interftce 125 using the optional output driver 
424. In this embodiment, two diflFcrcnt encryption units are used and the encryptions are based 
on a common key value 416 to provide two encryption mechanisms. As discussed further 
below, the key 4 1 6 can be established during a source-sink authentication process. 

Sink device 130 of Figiire 5 A comains many well known circuits (not shown for clarity) 
in addition to EMI circuit 160. EMI circuit 160 within the sink device 130 of Figure 5 A 
contains a decryption unit A 448 which can decrypt an encryption made by encryption unit A 
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418, assuming cipher key 452 coinddcs with key 416 and also contains a decryption unit B 450 
which can decrypt an encryption made by encryption unit B 420, assuming key 452 is correct. 
The data packet of interface 125 is received by a de-multiplexer circuit 442 and also by an EMI 
mode extractor drcuit 440 Circuit 440 extracts the header information from the received data 
packet and extracts the EMI field 210 from the header. Depending on the EMI mode extracted, 
circuh 440 controls signals over fine 446. If EMI mode 0 is extracted, then the data packet over 
line 125 is directly coupled to the bit stream recording media 456 or is allowed to be directly 
output over line 470 without inhibition. 

If circuit 440 extracts EMI mode A, then the data packet from interface 125 is routed 
through dcwmux 442 to decryption unit A 448 \^ch decrypts the data portion of the data packet 
(usmg key 452) and forwards the result to mux 454 which is also controlled by select line 446. 
Mux 454 routes the data packet from the output of decryption unit A 448 to the output line 470 
only. When the sink device 130 is a BSR. device, it is not allowed to record an EMI mode A 
data packet, so recording to the BSR media 456 is prohibited in tliis case. If circuit 440 extracts 
EMI mode B, then tlie data packet from mter&ce 125 is routed through de-mux 442 to 
decryption unit B 450 which decrypts the data portion of the data packet, changes the EMI 
mode to EMI mode A, records the " 1 r code (mode A) in the EMI field 2 1 0, and forwards the 
resuft to mux 454 which is also controlled by select line 446. Mux 454 routes the data packet 
from the output of decryption unit B 450 to the output line 470 and allows the BSR media 456 
10 record the data packet, now in EMI mode A. When the sink device 1 30 is a BSR device, it 
is allowed to record an EMI mode B data packet only once, so this data packet is changed to 
an EMI mode A packet prior to recording to the BSR media 456. In this embodunent, two 
different decryption units are used and the decryption is based on a single cipher key 452. 

When the sink device 130 is a bit stream recordiag (BSR) device, it is not allowed to 
record EMI modw A encrypted data. Therefore, decrypt unit A for EMI mode A is not 
implemented in the BSR. Figure 6A illustrates the block diagram 665 of an alternative 
embodiment of the EMI circuitiy for a bit stream recording sink device 130 without the decrypt 
unit A. In this embodiment, if the EMI extractor 440 detects mode A in the input 1 25, it stops 
the decrypt unit B 450 and stops the BSR recording unit 456. 

Circuit 400 of Figure 5 A prevents intermediate devices from compromising the copy 
protection in the following manner. If an EMI mode A data packet is altered on line 125 to an 
EMI mode B data packet, the sink device 130 will use the wrong deciypiion umt when 
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attempting to recover the data. The result becomes ineaoingiess information recorded by RSR 
media 456. If an EMI mode A or an EMI mode B data packei; fi-om interiace 125 is altered to 
an EMI mode O data packet, dien sink device 130 will not perform any decryption and the result 
is not renderable. 

Rgure SB illusiraies a system 500 of the present invention having a source device 120' 
and a sink device )30\ Figure 5B ilhistrotes tbeEMI drcdtiy 150' of a typical source unit 120' 
and £MI drcuitiy 160' of a typical sink unit I30'of an alternative embodiment of the present 
invention. In this embodiment, a common encryption unit and a common decryption unit are 
used, but they receive different cipher keys (Key A, Key B) depending on the EMI mode 
selected; this provides the two enciyption-decryption mechanisms. 

Source unit 120' of Figure SB can be a set-top-box (STB) unit also called a broadcast 
receiver which contains many well known circuits (not shown: for clarity) in addition to EMI 
circuit 1 50*. A receiver circuit 510 recdves AV information in the form of a data packet and 
performs any decryption required under CCI standards. The result is forwarded over 
communication interface 512 (coupled to an EMI mode selected circuit 514) and also to an 
inter&ce 513. Circuit 514 is an EMI mode select circiiit and d^ending on the recovered CCI 
copy protection information will select either EMI mode A or EMI mode B, if copy protection 
is required. If no copy protection is required, then inter&ce 513 is passed directly to interface 
125 and EMI mode 0 (code "00") is inserted into EMI field 210 of the data packet. 

Assuming copy protection is required, select circuit 514 controls the select line of 
multiplexer (mux) 516. Common key 524 is routed to hash circuit A 520 haviztg a first hash 
function which generates a first cipher k^ (key A) at its output. 524 is also routed to hash 
circuit B 522 having a second, different, hasdi fimction which generates a second cipher key (key 
B) at its output. If EMI mode A is selected, then mux 5 1 6 selects k^ A to forward to common 
encryption unit 5 18 which encrypts the data portion (e.g., field 220) of the data packet according 
to key A and according to a common encrypdon technique vnOaa encryption unit 5 1 8. Unit 5 1 8 
also places die '1 1" code (EMI mode A) within the EMI mode field 210 of the dau packet. The 
result is then passed over interface 530 to an optional driver circuit 526 which outputs the data 
packetto inter&ce 125. 

If EMI mode B is selected, then mux 516 of Figure 5B selects key B to forward to 
common encryption unit 518 which enoypts the data portion (e.g., field 220) of the data packet 
according to key B and according tu the common encryption technique within encryption unit 
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518. Unit 5 1 8 also places the "lO" code (EMI mode B) within the EMI mode field 210 of the 
data packet. The result is then passed over interface 530 to an optional driver circuit 526 which 
outputs the data packet to imcrfece 125. In this embodiment, two diflferent keys (A and B) arc 
used to alter the encryption process used in the single comipon encryption unit 518. As 
discussed below, the key 524 can be established during a souroe^sink authentication process. 
After sharmg a covert channel key. Kc, the source device 120' and the sink device 1 30' share 
work keys, A and B. First, the source device 120' sends a randomj number Na to the sink device 
130*. The source device and the sink devices use internal EMI circuitry to compute the work 
keys (Key A and Key B) by: 

KeyA = HKc(Na |) Ca) 
keyB«»IIKc(Na||Cb) 

where Hkc a keyed hash function using a key Kc and Ca and Cb are constant and are 
licensing codes. 

Circuit 150' is advantageous because it only requires a single encryption unit 518. 
Although two hash Junction circuits 520, 522 are required, this additional circuitry is generally 
less than the drcuitry eliminated by eliminating the second encryption unit. This is particularly 
true if the hash fanctions arc implemented in software. Hash ftmc^ons are readily implemented 
in software because the fUnction needs to be determined only onpe for a given key. 

Sink device 130' of Figure 5B contains many well known circuhs (not shown for clarity) 
in addition to EMI circuit 160\ EMI circuit 160' within the sink tfevice 130* contains a single 
common decryption unit 544 which can decrypt an encryption made by common encryption unit 
518, assuming the corrected common key b supplied. The datia packet of interface 125 is 
received by an EMI mode extractor circuit 540. Circuit 540. like circuit 440. extracts the header 
information from the received data packet and. extracts the EMI field 210 from the header. 
Depending on the EMI mode octracted, circuit 540 controls^ the select line of mux 542. If EMI 
mode O is extracted by circuit 540, then the data packet over line 125 is directly coupled to the 
bit stream recording media 550 or is allowed to be directly output over line 570. 

Assuming copy protection modes are extracted, EMI extraction circuit 540 controls the 
select line of multiplexer (mux) 542. Key 554 is routed to hash circuit A 546 having the first 
hash fimction which generates the first cipher key (key A) at its output. Key 554 is also routed 
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to hash circuit B 548 having the second, different, hajsh fimction which generates the second 
cipher key (key B) at its output. If EMI mode A is extracted from the data packet, then mux 
542 selects key A to forward to common deciyption unit 544 yk^hich decrypts the data portion 
(e.g., field 220) of the data packet according to key A and according to a common decryption 
technique within decryption unit 544. Unit 544 also places the "1 1 " code (EMI mode A) within 
the EMI mode field 210 of the data packet. The result is routed to the output line 570 only. 
When the sink device 130" is a BSR device, it is not allowed to record an EMI mode A data 
packet, so recording to the BSR media 550 is prohibited in thiji case. 

If EMI mode B is extracted by circuit 540, then mux 542 of Figure 5B selects key B to 
forward to common decryption unit 544 which decrypts the data portion (e.g., field 220) of the 
data packet according to key B and according to the common decryption technique within 
decryption unit 544. Unit 544 also places the "1 1" code (EMI mode A) within the EMI mode 
field 210 of the data packet. The result now in EMI mode A is then passed over interface 552 
to a BSR recording media 550 and optionally to an output interfepc 570. When the sink device 
130' is a BSR device, it is allowed to record an EMI mode B data packet only once, so this data 
packet is changed to an EMI mode A packet prior to recording to the BSR media 550. In this 
embodiment, two different keys (A and B) are used to alter the decryption process used in the 
single common decryption unit 544. As discussed further below, the key 554 (same as 524) can 
be established during a source-sink authentication process. Circuit 1 60' is advantageous because 
it only requires a single decryption unit 544. Although two hash function circuits 546, 548 are 
required, this additional circuitry is generally less tiian the circuitry eliminated by eliminating the 
second decryption unit. Hash functions 546, 548 are readily implemented in software because 
the function needs to be determined only once for a given key. 

When the sink device 130' is a bit stream recording (BSR) device, it is not allowed to 
record EMI mode A encrypted data. Therefore, hash A circuit for EMI mode A is not 
implemented in the BSR. Figure 6B illustrates the block diagram 670 of an alternative 
embodiment of the EMI circuitry for a bit stream recording sink device 130* without the hash 
A drcuit. In this embodiment. If the EMI extractor 540 detects mode A in the input 125, it stops 
the common decrypt unit 544 and stops the BSR recording unit 550. 

Circuit 500 of figure 5A prevents intermediate devices from compromising the copy 
protection in the following manner If an EMI mode A data packet is altered on line 1 25 to an 
EMI mode B data packet, the sink device 130' will use the wrong decryption key (between key 
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A and key B) when attempting to recover the data. The result is meaningless information 
recorded by BSR media 550. If an EMI mode A or an EMI mode B data packet from intcAce 
125 is altered to an EMI mode 0 data packet, then sink device 130' will not perform any 
decryption and the result is not renderable. 

Figure 7 illustrates a flow diagram 700 of steps performed by the present invention with 
respea to system 400 of Figure 5A At step 710, authentication js performed so that sink device 
and source device recognized each other. This process can be performed using various 
predetermined license and service keys. Any of a number of well known authentication and 
secure key exchange processes can be used at stq) 710 in accord^cc with the present invention. 
In the result, speda! codes are exchanged if authentication was successful and step 720 is 
entered. If authentication failed, then at step 715, process! 700 returns without any AV 
information exchanged. 

At step 720 of Figure 7, the source device 120 utilizes the special codes to send an 
encrypted k^ to the sink device 130 which decrypts the key. At this point, key 4 1 6 and key 452 
are established between the source and sink devices and these keys are of the same value. At 
step 730, the source device 1 20 recdves a data packet having a firjst copy protection mode (e.g., 
using CCI modes) and translates this CCI mode into an EMI mode (e.g., copy prohibited, copy 
once, unrestricted). At step 740. the circuit 150 places the proper ENfl mode into the header 
of the received data packet and cnciypts the data portion of the data packet using one of two 
possible enayption mechanisms accordir^ to the EMI.mode. This data packet is then forwarded 
over intcrfece 125. 

At step 740 of Figure 7, the since device uses circuit 160 to extract the EMI mode and 
decrypt the data packet according to the EMI mode that was extracted. One of two possible 
decryption mechanisms are used based on the EMI mode. TWs information is recorded in EMI 
mode A (Ml protection) if EMI mode B was received. If EMI mode A was received, then no 
recording is allowed. At step 760, if more data packets are required, then process 700 returns 
to step 740 to process the next data packet. Otherwise, process 700 returns. 

The operational procedure of the alternative embodiment of Figure 5B is sinular to the 
above except difiFerent keys are used to provide the difl^em encryption and decryption 
mechanisms of Figure 5B. 
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CLASSIFICATION OF DEVICES IN ACCORDANCE WITH THE PRESENT INVENTION 
Figure 8 Ulustraics a number of different dasses of devices that can be used in 
accordance with the present invention. Also shown in Figure 8 iarc the types of AV information 
packets (classified by EMI mode) that can be received and transmitted by each device. The 
dotted signal Unes represent AV infonnation packets in EMI mode B and the solid signal Uaes " 
represent AV information packets in EMI mode A. The first device class is device class A. 
These devices indude transmitting devices that can add the EMI code to their packet infonnation 
and also include those devices that can receive CCl data. An example is a set-box (STB) 120 
which is able to receive a sateflite broadcast (e.g., in CCI fonnat) and transmit the data over the 
EEE 1394 bus. As shown in Figure 8. the STB device 120 can generate AV transmission 
packets encrypted under either EMI mode A or EMT mode B. The STD device 120 can also 
generate AV transmissions that are unrestricted. Device 120 supplies AV infonnation in EMI 
mode B a» shown by output 626 and in EMI mode A es shown' by output 628. 

The second device class is device class B. These devices include receiving or sink 
devices that are capable of responding to the EMI infonnation that is present within AV 
Infortnatioa packets. An example device within class B is the fonnat cognizant recorder device 
630. This device 630 is able to properly decrypt the received AV information packets in any 
EMI mode, record the AV information using the IEEE 1394 standard fonnat, record the EMI 
infonnation added thereto and transmit the reproduced data using the IEEE 1394 standard 
fonnat. If the AV infonnation received is originated in EMI mode B. when recorded it is altered 
to EMI mode A to prevent further copies. Device 630 is able to receive AV infonnation packets 
encrypted In EMI mode B 632 and in EMI mode A 634 but only can supply AV infonnation 
encrypted in EMI mode A 636. 

The third device dass is device dass C Dje^ de^ include receiving devices that are 
incapable of folly processing certam copy protection infonnation (e.g., under CCI modes) 
because these devices lack the spedafized draiitty required to folly process this copy protection 
infonnation. One example of dass C Is the bit mm recorder (BSR) device 130 of Figure 8. 
It is capable of receiving only AV infonnation dncrypted in EMI mode B via input 610 and is 
capable of supplying only AV infonnation encr^jted in EMI mdde;A via output 615. The BSR 
device 1 30 is capable of decrypting mode B encryption using the extracted EMI code and storing 
this infonnation. if EMI mode B is received. The BSR device 130 can also reproduce AV 
information and transmit this infonnation in EMI mode A under the IEEE 1394 standard. 
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The fourth device class is device class D. These devices include receiving devices that 
can process BMI infonnation which is added to the infiirmaiion packets. An example of a class 
D device is digital television 620. The digital TV set 620 is able to receive AV infonnation 
enoypted in EMI mode B via input 622 and encrypted in EMI mode A via input 624, under the 
IEEE 1394 standard. The digital TV 620 is able to decrypt AV information from dther EMI 
mode A or EN/O mode B and render (be AV information, 

Enoyption and decryption modes can be licensed by an eotity depending on the fiinctions 
which the entity wants to achieve. If the entity manufactures display devices, licenses for 
decryption of EMI mode A and EMI mode B are necessary. If the entity manufactures a fiSR 
unit 130. decryption of EMI mode B and encryption for EMI mode A are necessary. EMI 
modes A and B can be combined with license keys and sendee keys, as described below with 
respect to one embodiment of the present invention. 

EXEMPLAKY SERVICE CLASSmCATIONS IN ACCORDANCE WITH 
ONE EMBODIMENT OF THE PRESENT INVENTION 

In one embodiment of the presem invention, particular communication services are 
supported. In this embodiment, particular secrets (e.g., Icey codes) are defined depending on the 
type of service used and whether a device is a source or sink device. According to the above 
classifications of the transmitting devices and the receiving devices, the following indicates 
service classifications for data transmissions. Transmissions within service 1 include transmitting 
devices of Classes A, B, or C with recehorq; devices of Qasses A. B, or C. Transmissions within 
service 2 include transmitting devices of Classes A, B, or C with jeceiving devices of Class D. 
Transmissions within service 3 include transmitting devices of Class D with receiving Devices 
of Classes A, B, or C. 

Generally, under service 1, a source unit which recognizes CCl copy protection format 
sends AV infonnation to a sink unit which also recognizes this CCI format (e.g., STD -> 
display, or, STB — > format cognizant recorder). Both source and sink are copy protection 
intelligent devices. Under senrice 2, a source unit which recogniaies the CCI format sends AV 
information to a sink unit which does not recognize CCI format but is implemented to recognize 
the EMI codes in accordance with the present invention (e.g., STB BSR unit). The sink unit 
does not have the same level of copy protection intelligence as the source unit. Under service 
3, a source unit that does not recognize CCI formal sends AV information to a sink unit that 



SUBSTITUTE SHEET (RULE 26) 



FROM mm 2005$ 7ra(fl)20:18/120:06/l!li^4807491884 P 26 



wo 9^/22373 J>CrAJ$98/22I26 

18 

recognizes CCI format (e.g., DVHS Display). 

In one embodiment of the present inveniion. secret codes (e.g., key codes) for using the 
EMI modes A and B and the seA^ices 1, 2, and 3 are given (e.g-, licensed) to the devices of the 
individual classes enumerated above. A key code or "secret" is used by the two devices for 
perfonnins secure key transmissions during authentication, as described above. In this manner, 
the keys that are described above and used for encryption and decryption can safely be 
transmitted between the source and sink devices. 

In the services 1, 2, and 3, di£ferent codes are necessary for the transmitting devices 
and the receiving devices. For example, the key code fbr the transmitting device of the service 
1 is diffirent fiom the key code for the receiving device. Described here is the manner that the 
key codes are provided to the individual devices. According to the table of Figure 9, there are 
eight key codes used in this embodiment of the present embodiment. The device classifications 
can be further refined according to types of data such as MPEO or DV, A pair including a 
service kqr and a license key is allocated to services 1, 2, and 3, respectively. A source unit has 
a service key and a sink unit has the licensed key corresponding to its supported services. 
Therefore, services 1, 2 and 3 are distinguished by service key or license key. 

For example, STB unit 120 can give service 1 , 2 so STB unit 120 has service key 1 and 
2. The DVHS 130 can receive service 2 and give service 3 so DVHS 130 has license key 2 and 
service key 3, Each service can be divided into sub services within it own service group A set 
of encryption modc(s). service mode(s) and license key(s) is given to a unit depending on the 
(unctions the device should have. For instance, a display device 620 could have deciyption EMI 
mode Aand EMI mode B and license keys fer services 1 and 3. The STB unit 120 could have 
encryption for EMI mode A and EMI mode B and service keys for service 1 and service 2. The 
DVHS (BSR) unit 130 could have decryption for EMI mode B, encryption for EMI mode A and 
license key for service 2 and service key for service 3. 

According to Figure 9» the devices of Class A are required to have key codes for the 
transmittiiig devices of services 1 and 2 and k^ codes for EMI modes A and B and are provided 
key codes: Secret IT; Secret IT; Secret 2T; Secret 2T; Secret A; and Secret B. Likewise, the 
devices of Class B are required to have key codes for the receiving devices of service 1 and 3, 
a key code for the transmitting device of Service 1 . and key codes for Modes A and B, and are 
provided key codes: Secret IR; Secret I R; Secret 3R; Secret 3R. Secret A; and Secret B. The 
devices of Class C are required to have key codes for the receiving devices of Services I and 3 
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and key codes for Modes A and Band are provided key codes: Secret IR; Secret IR; Secret3R; 
Secret3R; Secret A; and Secret B. The devices of Class D areirequired to have a key code for 
the recdviog device of Service 2 and akey code for the transmitting device of Service 3 and are 
provided key codes: Secret 2R; Secret 3T; Secret A; and Sccrrt B. Typically, the use of Mode 
A only for the transmissions and the use of Mode B only for the receptions is required. 

OPERATION OF PRESENT INVENTION 
USING SERVICE KEYS 

The followitig procedure describes the manner in which data packets are transmitted 
from a source device of class A to a sink device of class B acting i|s a receiving device. The data 
packets are transmitted from source device to sink device and are recorded by the sink device. 

The source device at the transmission side generates Ksecd as a data key for enciypting 
the data packets. The source device safely delivers the dau key Kseed to the sink device at the 
reception side using the secrets Secret IT and Secret IR for the transmitting device and the 
receiving device of Service 1. New, the source device makes an encryption Key A for Mode A 
and a cipher Key B for Mode B by employing Kseed. Secret A, and Secret B. Specifically, 
calculations are made by using: 

Key A >= h (Kseed 1 1 Secret A) 
Kqr B = h (Kseed 1 1 Secret B). 

Where letter h designates the hash fimciion, and the expression a i | b designate a bit connection 
of a and b. 

The source device reads the value of the CCI added to the data to be transmitted. If the 
CCI indicates the copy inhibition, the data packet is encrypted together with the CCI by means 
of the cipher Key A for Mode A. The EMI mode ("11") is stored in field 210 and the data 
packet is transmitted over the IEEE 1394 interikce. If the CCI in:dicates the single generation 
copy allowance, the data arc encrypted together with the CCI by means Of the cipher key B for 
Mode B. and the EMI mode (- 1 0") is stored and packeted in. the EMI mode field 2 1 0 of the data 
packet and the packet is transmitted over the IEEE 1 3 94 interface. If the CCI indicates no copy 
limit, the data packet is not encrypted but packeted. The EMI mode is stored as "00," in field 
210 and the packet is transmitted. Therefore, what key the transmitting device uses to encrypt 
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the data does not depend upon the seivice but is determined by the EMI mode added to the data. 

Like the source device, the sink device generates Key A and Key B from Kseed, Secret 
A. and Secret B. The EMI of the received packet is inspected by the sink device, and the data 
is decrypted by using the key A, if the EMI mode indicates Mode A, and by using key B if the 
EMI mode indicates Mode B. Next, the EMI mode added to the decrypted data is inspected. 
The data are not recorded if the EMI mode indicates the copy inhibition. The EMI mode is 
changed, if it indicates the single generation copy allowance, into the copy inhibition and is 
recorded together with the data. The EMI mode is recorded together with the data, if it 
indicates no copy limh. 

Described next is the processing for the case the transmitting device is the of class a 
whereas the receiving device is of class d. As in the foregoing procedure, the source device 
delivers the Kseed safely to the sink device. Howwcr, the secrets to be used here are Secret 2T 
and Secret 2R. The source device generates the keys Key A and Key B, as described above, and 
encrypts the data in dependence upon the EMI mode added to the data. The source device 
stores the proper EMI in the packet header and transmits it. 

The sink device generates the key B in a manner similar to that of source device. 
Assume the sink device is inhibited to use Mode A for receptions by the license conditions so 
that it does not generate key A The sink device inspects the EMI mode of the received packet. 
The sink device discards the packet if the EMI mode indicates Mode A. If the EMI mode 
indicates Mode B, the sink device decrypts the data by means, of the key B and records the 
packets. At this time, the information indicating that the data have been encrypted in mode B 
is recorded together with the data. If the EMI mode indicates 00, the sink device records the 
data as they are. At this time, the information indicating that the data have not been encrypted 
is recorded together with the data. 

The preferred embodiment of the present invention, a method and system for providing 
secure transmission of copy protected information between a source device and a bit stream 
recording (BSR) device, is thus described. While the present invention has been described in 
particular embodiments, it should be appreciated that the present invention should not be 
construed as limited by such embodiments, but rather construed according to the beiow claims. 
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CLAIMS 



1 . A system for transferring information, said system comprising: 
5 a source device for encoding an encryption mode, identifier (EMI) code into an 
information packet and for transmitting said infozmation packet over a conrniunication 
interface, said source device comprising: 

a first encryption circuit for encrypting data of said information packet 
provided said EMI code indicates a first mode; and 
10 a second encryption circuit for encrypting said data of said information 

packet provided said EMI code indicates a second mode; and 
a sink device for receiving said infonnation packet from said communication 
interiace^ said sink device comprisuig: 

an extractor circuit for extracting said E^I code from said information 
15 packet; and 

a second decryption circuit for decrypting said data of said infonnation 
packet in response to said extractor circuit indicating that said EMI code is of said 
second mode; and 

wherein said first mode is a copy prohibition mode indicating that said infonnation 
20packet is not to be reproduced by said sink device and n^dierein said second mode is a copy 
once inhibition mode indicating that said infonnation packet is not to be reproduced more 
than once by said sink device. 

2. A system as described in Clahn 1 wherein said sink device fiuther comprises 
2Sa first decryption circuit for deciypting said data of said information packet in response to 

said extractor circuit indicating that said EMI code is of said first mode. 

3. A system as described in Cliiim 2 wheidn sajd first encryption circuit, said 
second encryption circuit, said first deciyption circuit and said second decryption circuit are 

30 coupled to receive a same cipher key. 



FROM mm ' 2005$ 7fl25B(fl) 20 :20/M20:06/jilf 4807491 884 P 30 



W09W2372 PCTAJS98/!2212« 

22 



4. A system for transferring inibnnatioii, said system comprising: 

a source device for encoding an enczyption modb identifier (EMI) coda into an 
information packet and for transmitting said information packet over a communication 
5 interface, said source device comprising: 

a common encryption circuit for enciypting data of said information packet 
based on a first key if said EMI code indicates a first mode, and wherein said 
common encryption circuit is also for encrypting data of said information packet 
based on a second key if said EMI code indicates a second mode; and 
10 a sink device for receiving said information packet from said communication 
interface, said sink device comprising: 

an extractor circuit for extracting said EMI code from said infoimation 
packet; and 

a common deciyption circuit for decrypting said data of said infonnation 
1 5 packet using said second key in response to said extractor circuit indicating that said 
EMI code is of said second mode; and 

wherein said first mode is a copy prohibition mode indicating that said information 
packet is not to be reproduced by said sink device and wherein said second mode is a copy 
once inhibition mode indicating that said infozmadon packet is not to be rqaroduced more 
2 Othan once by said smk device. 

5. A system as described in C3aim 1 or 4 wherein said sink device is a bit stream 
recording device and wherein said sink device further comprises a recording media for 
recording said infonnation packet provided said EMI code is of said second mode and 

25 wherein said EMI code of said mfbrmation packet is altered to said first mode by said sink 
device upon recording onto said recording media. 

6. A system as described in Claim 4 wherein said common decryption circuit of 
said sink device is also for decrypting said data of said information packet using said first 

30key in response to said extractor circuit mdicating that said EMI code is of said first mode. 



FROM mm 2005$ 7fl25B(fl)20:2I/il20:06/lilf4807491884 P 31 



»> » 

WO 99/22372 FCT/US98/22126 

23 



7. A system as described in Claim 2 or 6 wherein said communication interface 
is a serial communication interface coiiforming to tlie IEEE 1394 communication standard 
and wherein said information packet is a digital infoimation packet. 

5 

8. A system as described in Claim 2 or 6 wherein said source device is a 
broadcast receiver device and further comprises a receiver circuit for receiving an infonnation 
packet encoded with CCI information and extracting a copy protection code therefrom and 
wherein said sink device id unable to process an infonnation packet encoded with CCI 

lOlnfannation. 

9. A system as described in Claim 2 or 6 wherein said information packet 
represents a portion of a digital audio/visual program. 

15 10. A system as described in Claim 6 wherein said source device and said sink 
device each comprise: 

a first hash circuit for generating said first key based on a common key; and 
a second hash circuit for generating said second key based on said common key and 
wherein said common key is transferred between said sink device and said source device 
20before said mformation packet is received by said sink device. 

II. A method of transferring infonnation that contauis copy protection modes 
comprising the steps of: 

a source device receiving an infoimation packet having a copy protection mode; 
25 said source device storing an encryption mode indicator (EMI) code into a header of 
said information packet depending on said copy protection mode; 

said source device using a first ^iciyption mechanism to encrypt data of said 
infonnation packet if said EMI code is of afiist mode; 

said source device using a second encryption mechanism to encrypt said data of said 
30informatioD packet if said EMI code is of a second mode; 
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said source device not cnciypting said data of said infonnation packet if said EMI 
code is of a third mode; and 

said source device transmitdng said infoimation packet to a sink device wherein said 
first mode is a copy prohibition mode indicating that said infonnation packet is not to be 
5reproduced by said sink device, said second mode is a copy once inhibition mode indicating 
that said information packet is not to be reproduced more than once by said sink device and 
said third mode is an unrestricted mode indicating that said infonnation packet can be freely 
reproduced by said sink device. 

10 12. A method as described in Claim 1 1 flirther comprising the steps of: 

said sink device receiving said mformation packet and extracting said EMI code 
therefrom; 

said sink device decrypting said data of said information packet using a first 
decryption mechanism if said EMI code is of said first mode; 
16 said sink device decrypting said data of said infonnation packet using a second 
deciyption mechanism if said EMI code is of said second mode; and 

said sink device not decrypting md data of said information packet if said EMI code 
isofsaidtfiirdmode. 

iO 13. A method as described in Claim 12 further comprising the step of: 

said sink device changing said EMI code from said second mode to said first mode 
and storing ^ new EMI code into said infonnation packet; and 
said sink device recording said infermation padcet 

5 14. A method as described in Claim 12 wherein said step of said source device 
receiving an infonnation packet having a copy protection mode incJudes the step of said 
source device translating said infonnation packet having encoded CCI information to extract 
said copy protection mode. 



IS. A method as described in Claim 12 wherein said information packet is a 



FROM mm 2005$ 7fl25B(fl) 20: 22/1120 :06/mf4807491 884 P 33 



wo 99/22372 PCT/US9«a2126 

25 

digital r^resentation of a portion of an audio/visual program. 



16. A method as described in Claim 12 wherein said source device is a broadcast 
receiver device and v^erein said sink device is a bit stream recorder. 



20051 7ra(fl)20:22/M20:06/l!li^807491884 P 34 




FROM 



2005$ 7fl25B 1^) 20:22/1120: 06/511^4807491 884 P 35 



pct/vsnazm 



2/10 





CM 

DC 

2 



DC 
< 
DC 
O 

s 

a. 



81 




FROM^|@IS$ 



2005$ 7^258 (fl)20:22/ll20:06/Xilf4807491884 P 36 



3/10 

100 



WIRELESS 
TRANSMITTER 
(Digital Program) 



110 




115 



DIGITAL 
BROADCAST 
RECEIVER 
UNIT 



EMI 



150 



/^120 



125 



FIGURES 



EMI 



-160 



BIT STREAM 
RECORDING 
DEVICE 



130 



FROM 



2005$ 7fi25B{fl) 20: 23/1120:06/^4807491 884 P 37 



WOM/23372 



PCTA;S98a2126 



4/10 




UJ 

O 
iZ 



' FROM mm 



2005$ 7fl25a(fl)20:23/M20:06/lilf4807491884 P 38 



W099tt3372 PCT/USM/nU6 



9/10 




FRou mm 



2005$ 7fl25B(fl)20:23/M20:06/5^^4807491884 P 39 




2005$ 7fl25B(fl)20:24/M20:06/iSI§4807491884 P 40 



WOWa2372 



PCTA;S98/2312« 



440 



7/10 



125 



4 EMfixf ractor" |--|. 

+ + I 

I 

4 — L.-^ 

-I DECRYPT UNIT B j.— 

I ^450 

+ 

I KEY 

+ + 452 



.IbVrmediaI 

*• 1 + 



456 



FIGURE 6A 



S70 



t "^EMI^xf RACTOr'I-. 
^540 



IN-^ 



125 



■j COMMON DECRYPT UNIT 
I 544 

I hash'b""|-n 



550 



548 



+• 
I 

+- 



KEY 



554 



FIGURE 66 



20051 7^258 (fl) 20: 24/1120 :06/ltl§§4807491 884 P 41 



wo 99/22372 



PCT/US9«a2126 



mo 



2Q0 



START 



PERFORM AUTHENTICATIOJ^ PROCESS , 71 0 
BETWEEN SOURCE AND SINK DEVICES 



•NO- 



715 



AUTHENTICATE? 





Iyes 


SOURCE DEVICE SENDS ENCRYPTED KEY TO SINK 
DEVICE WHICH DECRYPTS THE KEY 


^.720 








SOURCE DEVICE RECEIVES SIGNAL USING FIRST DATA 
PROTECTION MODE AND TRANSLATES TO EMI DATA 
PROTECTION MODE i 


730 


\ 




SOURCE PLACES EMI INTO HEADER OF DATE PACKET 

ENCRYPTS THE DATA PORTION OF PACKET 
DEPENDING ON THE EMI VALUE AND ^ENDS PACKET 
TO THE SINK DEVICE : 


-740 


I 




SINK DEVICE RECEIVES DATA PACKET, EXTRACTS EMI 
AND DECRYPTS THE PACKET INFORA/IATION USING / 
DECRYPTION PROCESS INDICATED BY THE EMI AND 

RECORDS THE INFORMATION WITH FULL PROTECTION 


750 









UVSTPACK&r? 



YES 



RETURN 



FIGURE 7 



' mm mm 



2005$ 7^258 (fl) 20 :24/M20:06/liif 4807491 884 P 42 



wo 99/32372 pctnisismm 



9/10 




2005$ 7ra(fl) 20: 25/1120 :06/JSSf 4807491 884 P 43 



wo 99/22372 PCT/US98a213tf 
2fifi 10/10 



SERVICE 1 
310 


TRANSMISSION 
315 


SECRET1T 


RECEPTION 
317 


SECRET1R 


SERVICE 2 
320 


TRANSMISSION 
325 


SECRET2T 


RECEPTION 
327 


SECRET2R 


SERVICE 3 
330 


TRANSMISSION 
335 


SECRET3T 


RECEPTION 
337 


SECRET3R 


MODE A 

340 


SECRETA 


MOOEB 

350 


SECRETS 



FIGURE 9 



FROMmii 



20051 7fl25B(fl) 20: 25/1120 :06/XISf4807491 884 P 44 



INTEXNATIONAI... SEARCH REPORT 


Irt. cuofiaf AppUcaiivn He 

PCT/US 98/Z2126 


A. ClASSlftCA-nON OF SUBJECT MATTRR , 

IPC 6 611820/00 H04N5/913 




A«eorting lo initmailonRi patem CliMifcqrton UPC) or w aotn niitonil dutllieaHon Mid IPC 




B. FIELOG SEARCHED 


Minimum documsntatton aearcM (ciRMdicaSon system loloMfBd By 6iB9«irieaii6n •yiMt) 

IPC 6 0118 H04N 


P««unwntaiio r» $Mran#« owr than mmtrrom documematten le ti« axiaitt thai tuen doomarts «• inciu 


dad inthafiatdiaaaKhao 


a^rvnic data base oonauo^d dunng thd mi^nutionai aeorcD (ovne gf data tM8« aftf. wtMr» practical, saarcft lorma vsed) 



e. OOCUMEWTS COWBPeBEB TO B£ RELEVANT 



Citsgoiy' 



Cltitlanc(daouin«M,Mlhindic«Uoa iit«reapprapii«u,all)»r«l«vampaaaia4* 



R9i*vanttad«>nNo. 



EP 0 766 466 A {SONY CORP) 2 April 1M7 

see page 6, line 1 - line 44; figure 9 

EP 0 691 787 A (SONY CORP) 10 January 1996 

see the whole document 

EP 0 763 936 A (L6 ELECTRONICS INC) 
19 Harch 1997 

WO 97 21279 A (SOLANA TECHNOLOGY OEV CORP) 
12 June 1997 

US 4 598 288 A (YARBR0U6H CHARLES J ET 
AL) 1 July 1986 

EP 0 618 723 A {SONY CORP) 5 October 1994 



1.2.4-6, 
9 



1.2.4-6, 
9 



1 X] Pvirthardoouinaniaa/^itfMSinttw conUnuAtienorDoxC. 


|X I Pstont family marnb«i9«feinied in annex. 


* Spaeiai e«ii«go/ia« of dta^ eeewnento : 

*A' documant daflnino tne oanarai utue ei th« ait ivtiWi to nol 
eonaidared to b« d partloular r^vanoe 

V «arii«rooaumentbuipuuiili9donoran«rtna imamBtfenal 

ningoata 

V dBflunM WhMt nuy throw doubta on piter9y ctakiKf) «r 

Which fa cttad to •alabfifiii mt pu^aJSon Sk^dSSSr 
otanonoroiharipodilreaaonfaa spedfled) 

XT donmam Mraning lo «n eiat dlactosur*. uae. •MfUon or 
em« inaant 

T* docurnMtp^^llaMprtoriDirwi^^ 
laiormantnopneivyetfAci^tfTwd 


T* later decumanlpt«llaAid4ftar (he miamatienal tiling date 
or priority dale and not in oonfflfitwOitl^ ^WiicatiAnbu 
dodiounderaiAndihaprviqpleorlhaoo^ undaitying tna 

"X* oecumanterpaitlpviarfvtvvanca: tna elaifneo nvamion 
CMiMba CQnaldeied<noval or oennotbe oonaidifed to 
fcnDManjWomiMMpwhanlhldOeununtla lakeneJone 

"Y* MMI^ Invantien 
Oonnol b9 oonMdnetf io irafoira an mwantiva (lap whan ine 
doAn^ant te9PnfteMdwitft diw crmpie ether auanflsou* 
gj^jweheontMonDtlnoeOviouetoa ptf^onsktOad 

-dbounm mauBar olina Mma pal«m famtfy 


Data of tha aoiuaJ compHtiM et Ita nemoikinai aaaich 


Oeia of mnnoof tfi* lr4«fiiatfon«l aaaich npoit 


17 February 1999 


24/02/1999 


Nam* and ma^tng Mam9 9( th« i3A 

European P^am OfOca, P.O. 56l6 Patamtaan 8 

NL-aadOKVRaawofc 

Tel. (431-701 946^040. Ti. 31 651 aoo n). 

Far {^1«70) 340-3019 


Autheriied officer 

Oevergranne. C 



Focm PGTWSAAiQ (taeond tfnao IWD 



page 1 of 2 



FROM mm 



2005$ 7fl25B{fl) 20: 25/^20: 06/^4807491 884 P 45 



INTERNATIONAL SEARCH REPORT 



fi i«(ionai AppUeaUan H9 

PCT/US 98/221Z6 



C^Cemhualion) DOCUMENTS CONSIDERED TO Be RELEVAMT 



C4i*90iy' CilHioniirdoeunw<twahinaieatleivMhsi«app(^>nM,^lhBiil(vaffipa<^ 



RMvanii«cl«i)nNa. 



Zf 0 878 794 A (SONY CORP) 

18 November 1998 

see claims l-7{ figures 1-3 



11-16 



Pmk PCT/ISAAlO (fiomuMon o< •aeond ihcio iJOy 1109) 



page 2 of 2 



nam mm 



20051 7fl25B(fi)20:26/M20:06/Xllf4807491884 P 46 



INTERNATIONAL SfiARCH 

MomiMian on #«Mnl lanutf 



REPORT 



PatBitt oocument 
Biiedin«eaKiii9pon 



IM 



(leiMl Appocqlioq tM 

PCT/US 98/22126 



PubiicBiion 
data 



EP 0766466 A 02-04-1997 



EP 0691787 A 10<-01-1996 



EP 0763936 A 19-03-1997 



MO 9721279 A 12-06-1997 



US 4598288 A 01-07-1986 



EP 0618723 A 05-10-1994 



Pai«mfarn«y 



JP 
AU 
BR 
CA 



9098375 A 
6580796 A 
9603952 A 
2186418 A 



EP 0878794 A 18-11-1998 



CN 
JP 
US 



1115150 A 
8077706 A 
57916828 A 



CN 
JP 
US 



1150738 A 
909I3S61 A 
5799081 A 



US 
AU 
EP 



5719937 A 
1128397 A 
0873597 A 



AU 
US 
AU 
CA 
DE 
FR 
GB 
JP 



S36261 6 
4305101 A 
644U80 A 
1159551 A 
3014309 A 
24S4736 A 
2046967 A.B 
5514£B76 A 



OP 
CA 



6339110 A 
2120380 A 



JP 
CA 



10322^48 A 
2236387 A 



Pubucsilon 
(tola 



08- 04-1997 
10-04-1997 

09- 06-1998 
30-03-1997 

17- 01-1996 
22-03-1996 

18- 08-1998 



28-05-1997 
04-04-1997 
25-08-1998 



17-02-1998 

27- 06-1997 

28- 10-1998 



03-05-1984 
08-12-1981 
20-05-1982 
27-12-1983 
06-11-1980 
14-11-1980 
19-11-1980 
06-11-1984 

06-12-1994 

03- 10-1994 

04- 12-1998 
14-11-1998 



This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 

BEST AVAILABLE IMAGES 

Defective images within this document are accurate representations of the original 
documents submitted by the applicant. 

Defects in the images include but are not limited to the items checked: 

□ BLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 

□ FADED TEXT OR DRAWING 

□ BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 

□ LINES OR MARKS ON ORIGINAL DOCUMENT 

□ REFERENCE(S) OR EXHIBIT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 

IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 



